CVE-2002-1605

HP Tru64 UNIX <5.1a-4.0f - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1605. PoCs published by stripey.

AI-analyzed exploit summary This exploit targets a buffer overflow in the _XKB_CHARSET library on Tru64 Unix systems, allowing local privilege escalation to root via environment variable manipulation. It includes shellcode and precise return address calculations for multiple targets (dxconsole, dxpause, dtsession).

Description

Buffer overflow in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows attackers to execute arbitrary code via a long _XKB_CHARSET environment variable to (1) dxpause, (2) dxconsole, or (3) dtsession.

Exploits (1)

exploitdb WORKING POC VERIFIED

by stripey · perllocalunix

https://www.exploit-db.com/exploits/21774

View Code ZIP pw:eip

This exploit targets a buffer overflow in the _XKB_CHARSET library on Tru64 Unix systems, allowing local privilege escalation to root via environment variable manipulation. It includes shellcode and precise return address calculations for multiple targets (dxconsole, dxpause, dtsession).

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Tru64 Unix 5.1 (HP)

No auth needed

Prerequisites: Local access to a vulnerable Tru64 system · Presence of vulnerable binaries (dxconsole, dxpause, or dtsession)

MITRE ATT&CK